Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/mQ9LE1o9_k1ZCRHPlcSaE3MW2Qw.roa
File: mQ9LE1o9_k1ZCRHPlcSaE3MW2Qw.roa (raw, json)
Hash identifier: 2tGisHv2ziptkw6NiDVMR6HhSnY6a8dAzzvTnzBFPgA=
Subject key identifier: 99:0F:4B:13:5A:3D:FE:4D:59:09:11:CF:95:C4:9A:13:73:16:D9:0C
Certificate issuer: /CN=753d476db96de1e58623119a70b9d7b00b676da0
Certificate serial: 018CC4250E3B0ADECA8F6D2B598D95649600
Authority key identifier: 75:3D:47:6D:B9:6D:E1:E5:86:23:11:9A:70:B9:D7:B0:0B:67:6D:A0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dT1Hbblt4eWGIxGacLnXsAtnbaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/mQ9LE1o9_k1ZCRHPlcSaE3MW2Qw.roa
Signing time: Mon 01 Jan 2024 08:30:11 +0000
ROA not before: Mon 01 Jan 2024 08:30:11 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 396982
IP address blocks: 193.108.15.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/dT1Hbblt4eWGIxGacLnXsAtnbaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/dT1Hbblt4eWGIxGacLnXsAtnbaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/dT1Hbblt4eWGIxGacLnXsAtnbaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 May 2024 01:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:25:0e:3b:0a:de:ca:8f:6d:2b:59:8d:95:64:96:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=753d476db96de1e58623119a70b9d7b00b676da0
Validity
Not Before: Jan 1 08:30:11 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=990f4b135a3dfe4d590911cf95c49a137316d90c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:82:dc:f8:6a:1d:08:29:1c:37:20:f6:e5:a8:af:
29:5f:af:81:68:d0:ab:9a:85:58:3c:28:86:e7:67:
8c:04:ac:4f:c4:68:70:72:8e:f9:9a:e5:8b:4c:30:
86:ec:9e:70:f3:44:3c:3c:19:9d:f7:22:18:5c:b8:
ec:48:e7:66:57:76:c0:cd:59:2c:17:7c:3e:60:5b:
7a:71:43:ce:6b:a5:2a:41:b2:6c:24:ea:3d:0f:70:
93:59:8b:9b:97:5c:55:6a:ae:f3:ba:4b:81:e0:8b:
63:b1:7b:a2:55:bf:c0:0b:df:ef:16:91:ce:d2:05:
63:08:71:47:59:46:d0:38:c2:4a:6a:9d:91:4b:06:
33:53:8f:6b:68:31:58:6a:0a:bf:07:ed:b0:b6:a9:
80:3f:7c:de:e4:90:9e:ee:95:8b:8a:7f:21:9a:fd:
70:33:c4:25:11:a0:9a:53:85:af:f3:8f:55:74:66:
15:64:fd:63:01:7b:fb:5c:74:ba:a8:8b:dd:b2:af:
60:9e:7f:48:06:a1:a5:e7:36:e6:03:c4:86:04:48:
d5:a5:67:3d:2a:cb:26:0d:4d:4b:00:85:b7:e7:3c:
8e:ff:22:19:ec:67:cb:5e:53:39:e6:ba:ab:7f:b4:
42:f2:76:9a:5c:15:13:fd:70:51:3a:1c:97:8d:41:
19:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:0F:4B:13:5A:3D:FE:4D:59:09:11:CF:95:C4:9A:13:73:16:D9:0C
X509v3 Authority Key Identifier:
keyid:75:3D:47:6D:B9:6D:E1:E5:86:23:11:9A:70:B9:D7:B0:0B:67:6D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dT1Hbblt4eWGIxGacLnXsAtnbaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/mQ9LE1o9_k1ZCRHPlcSaE3MW2Qw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7f/6a9cf9-c0cc-4011-860e-4685782ac2c3/1/dT1Hbblt4eWGIxGacLnXsAtnbaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.108.15.0/24
Signature Algorithm: sha256WithRSAEncryption
57:22:d8:9f:24:b2:ce:f3:4d:38:1f:37:f6:3e:f2:d0:7f:a3:
f3:90:4c:e3:81:a6:8c:0e:21:56:5a:9d:9a:00:71:65:55:d3:
f2:a3:eb:a4:28:89:e5:be:bd:6e:68:10:d5:05:22:7f:dc:4f:
fb:26:e4:53:0b:00:d6:7e:91:25:7e:b1:22:ed:ca:98:a6:5c:
9b:68:78:07:68:f8:5a:a9:81:00:da:1f:78:e7:a9:c6:fb:90:
ba:4f:2e:71:ee:24:3f:04:9c:db:d3:c7:e9:55:5c:4f:26:d8:
b9:52:01:cd:b4:0b:1b:58:21:04:89:20:54:96:39:e2:7e:18:
a4:c5:42:c3:83:6d:be:1a:20:c1:7d:d7:ec:e5:da:41:1a:f8:
33:8b:9f:e1:8e:d4:2e:50:4d:84:be:5b:36:8a:48:a7:e6:4a:
90:e8:90:74:7a:64:ab:2a:e3:3e:de:e1:64:fd:f9:67:a4:2e:
40:20:92:7c:b5:a5:89:22:4c:a3:35:76:d0:1f:8c:00:59:f0:
97:e0:1d:6a:8e:1f:d0:e0:3c:3b:a1:d6:5f:6e:64:6c:46:e4:
76:3c:11:8b:df:86:22:68:80:35:fa:bd:14:e8:11:f3:91:00:
1b:14:f7:41:ca:8d:98:40:29:ee:71:78:75:e1:f8:fd:5c:de:
e4:22:42:57
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAYzEJQ47Ct7Kj20rWY2VZJYAMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDc1M2Q0NzZkYjk2ZGUxZTU4NjIzMTE5YTcwYjlkN2IwMGI2
NzZkYTAwHhcNMjQwMTAxMDgzMDExWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
Eyg5OTBmNGIxMzVhM2RmZTRkNTkwOTExY2Y5NWM0OWExMzczMTZkOTBjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgtz4ah0IKRw3IPblqK8pX6+BaNCr
moVYPCiG52eMBKxPxGhwco75muWLTDCG7J5w80Q8PBmd9yIYXLjsSOdmV3bAzVks
F3w+YFt6cUPOa6UqQbJsJOo9D3CTWYubl1xVaq7zukuB4ItjsXuiVb/AC9/vFpHO
0gVjCHFHWUbQOMJKap2RSwYzU49raDFYagq/B+2wtqmAP3ze5JCe7pWLin8hmv1w
M8QlEaCaU4Wv849VdGYVZP1jAXv7XHS6qIvdsq9gnn9IBqGl5zbmA8SGBEjVpWc9
KssmDU1LAIW35zyO/yIZ7GfLXlM55rqrf7RC8naaXBUT/XBROhyXjUEZmQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFJkPSxNaPf5NWQkRz5XEmhNzFtkMMB8GA1UdIwQY
MBaAFHU9R225beHlhiMRmnC517ALZ22gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvZFQxSGJibHQ0ZVdHSXhHYWNMblhzQXRuYmFBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Zi82YTljZjktYzBjYy00MDExLTg2MGUt
NDY4NTc4MmFjMmMzLzEvbVE5TEUxbzlfazFaQ1JIUGxjU2FFM01XMlF3LnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Zi82YTljZjktYzBjYy00MDExLTg2MGUtNDY4NTc4MmFjMmMz
LzEvZFQxSGJibHQ0ZVdHSXhHYWNMblhzQXRuYmFBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAwWwPMA0G
CSqGSIb3DQEBCwUAA4IBAQBXItifJLLO8004Hzf2PvLQf6PzkEzjgaaMDiFWWp2a
AHFlVdPyo+ukKInlvr1uaBDVBSJ/3E/7JuRTCwDWfpElfrEi7cqYplybaHgHaPha
qYEA2h9456nG+5C6Ty5x7iQ/BJzb08fpVVxPJti5UgHNtAsbWCEEiSBUljnifhik
xULDg22+GiDBfdfs5dpBGvgzi5/hjtQuUE2Evls2ikin5kqQ6JB0emSrKuM+3uFk
/flnpC5AIJJ8taWJIkyjNXbQH4wAWfCX4B1qjh/Q4Dw7odZfbmRsRuR2PBGL34Yi
aIA1+r0U6BHzkQAbFPdByo2YQCnucXh14fj9XN7kIkJX
-----END CERTIFICATE-----
Generated at Mon May 6 07:06:43 2024 by rpki-client on console-fra.rpki-client.org